Hello All, Now that the LDAP topic is there. I've been trying to do a simple 389 LDAP based authentication to an Active Directory Server. For what I can see in the logs in the Active Directory server, the BIND Domain and BIND Password settings are correct and I can contact the server correctly.
I believe the issue is with the "*Object filter*" parameter in Cherokee. Although it says that: "Object filter. It can be empty." I usually get this error message when I start it with out this Parameter: The LDAP validation module requires a 'filter' property It looks like you did not fill a required property. Check the LDAP details and try again. So when I put a Filter Simple filter like this: *"(objectClass=*)"* Filter Reference from: http://msdn.microsoft.com/en-us/library/aa746475(v=vs.85).aspx I usually get this in the error logs: {'type': "error", 'time': "28/04/2011 10:58:40.311", 'title': "Could not search in LDAP server: "(objectClass=*)"", 'code': "validator_ldap.c:344", 'error': "29", 'description': "The issue seems to be related to your system.", 'version': "1.2.2", 'compilation_date': "Mar 23 2011 12:19:50", 'configure_args': " '--includedir=${prefix}/include' '--mandir=${prefix}/share/man' '--infodir=${prefix}/share/info' '--libexecdir=${prefix}/lib/cherokee' '--disable-maintainer-mode' '--disable-dependency-tracking' '--host=x86_64-linux-gnu' '--build=x86_64-linux-gnu' '--enable-os-string=Ubuntu' '--prefix=/usr' '--localstatedir=/var' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--sysconfdir=/etc' '--docdir=/usr/share/doc/cherokee-doc' '--with-wwwroot=/var/www' '--enable-pthread' 'build_alias=x86_64-linux-gnu' 'host_alias=x86_64-linux-gnu' 'CFLAGS=-Wall -g -O2' 'LDFLAGS=-Wl,-Bsymbolic-functions' 'CPPFLAGS=' '--includedir=${prefix}/include' '--mandir=${prefix}/share/man' '--infodir=${prefix}/share/info' '--libexecdir=${prefix}/lib/cherokee' '--disable-maintainer-mode' '--disable-dependency-tracking' '--host=x86_64-linux-gnu' '--build=x86_64-linux-gnu' '--enable-os-string=Ubuntu' '--prefix=/usr' '--localstatedir=/var' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--sysconfdir=/etc' '--docdir=/usr/share/doc/cherokee-doc' '--with-wwwroot=/var/www' '--enable-pthread' 'build_alias=x86_64-linux-gnu' 'host_alias=x86_64-linux-gnu' 'CFLAGS=-Wall -g -O2' 'LDFLAGS=-Wl,-Bsymbolic-functions' 'CPPFLAGS='", 'backtrace': ""} So considering all these, I think there is a small bug in Cherokee, because that parameter is in fact required although it says is Optional. And it would be really cool if you can provide some *Filter *examples of how you guys usually get LDAP Authentication working. Best Regards, Sergio 2011/4/28 Alvaro Lopez Ortega <[email protected]>: > Hello Raúl, > > 2011/4/28 Raúl Jareño Morago <[email protected]> >> >> We use ldap validation in some pages and we want to change them to ldaps >> (ldap secure). Is it possible in cherokee? We don't find the way of doing >> it. > > The “Use TLS” checkbox is market, isn't it? > Remember to set the “Port” to 636 as well. > -- > Greetings, alo > http://www.octality.com/ > > _______________________________________________ > Cherokee mailing list > [email protected] > http://lists.octality.com/listinfo/cherokee > >
_______________________________________________ Cherokee mailing list [email protected] http://lists.octality.com/listinfo/cherokee
